Thank you NC department of revenue…



I heard on the local news last night that the North Carolina Department of Revenue has lost a laptop that had ~30,000 state taxpayers information on it. Social Security numbers/etc… The report I saw that the state has setup a hotline to “teach citizens about identity theft” and have sent letters to those affected. Thanks… lose a laptop with 30,000 and then teach US about identity theft. How about teaching employees with sensitive information about encryption? ……. so I looked into it a bit further this morning.


According to this article the laptop was stolen from a car in the Raleigh area in DECEMBER. North Carolina has a “victims toolkit” at this address which is geared towards giving people the tools to request a freeze on their credit, notifying the three major credit bureaus, etc. (The report was from mid-January).

Also, people are encouraged to act quickly if they are notified that their information has been compromised.

It’s amazing to me that such large volumes of sensitive data are carried around and assumably NOT kept in an encrypted loop-back or some other protected store. Let’s face it, there ARE many tools for making a file relatively unreadable without a good passphrase. There is no indication in the reporting that I’ve seen that any steps were taken to encrypt the data for just such a possibility.

This get’s me back to something I’ve said many times to folks that say they won’t make a purchase online because they’re concerned about identity theft. These days, we are at the mercy of EVERY company that we do business with (including the state/federal and local governments). There is risk EVERY time you give someone your social security number or let the credit card swipe because more often than not it goes into a database somewhere. If the companies that are keeping the data have lax security or make poor choices, then you’re out of luck.

From the Charlotte observer’s report….

The employee’s car was locked, and she had followed department policies about securing the computer, Brooks told the Observer. The computer contained security features, but Brooks said officials are examining additional software safeguards.

So… I will assume they at least had a login password as part of their policy… I’m afraid that may have been all.

Related Posts

Blog Traffic Exchange Related Posts
  • Registrars not verifying contact information on domains? According to a GAO report one of the reasons that phishing and scam websites are because of a lack of enforcement and policing by registrars of accurate contact information. According to their study over 5% of sites had been registered with false data. ~2.5% had been registered with incomplete information.......
  • Some companies unable to secure your data It's sad, but true. Some companies are just plain irresponsible with your data. Whether it be credit card information, or address and phone number there are those that aren't good about keeping their databases private. The securityfix is reporting that a recent survey found 12% of people had been notified......
  • Huge identity theft ring discovered by spyware research Sunbelt blog, reports that they have uncovered a MASSIVE amount of personal data, ranging from usernames to passwords to banking information and much more while investigating spyware. They found keylogger transcript software with lots of personal information. Sunbelt develops software to protect against spam and spyware and other security threats.......
Blog Traffic Exchange Related Websites
  • Have You Ever Recovered from Bad Credit? The first step you must take to recover from bad credit is to know what is on your credit report. You are legally entitled to one free credit report each year. Make sure that everything on your credit report is actually valid. It is not unusual for credit reports to......
  • 5 Ways A Good Credit Report Can Enhance Your Quality Of Life Many people do not understand how important a good credit report can be to your future happiness.  A credit report is one of the first things that many lenders and creditors look at when trying to determine whether or not to give you whatever items you have requested and has......
  • Things to Have Removed from your Credit Report pt 2 Continued from part 1. 3 - Charge Offs. When you do not pay off a credit card account or a loan account for a period of three to six months, your creditors are generally going to assume that your account is non collectible, or that it is in default. When......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site